[ILUG] OpenVPN

[kevin]

On Thu, 2010-09-02 at 16:25 +0100, belgarath wrote:
> On Thu, 2010-09-02 at 16:14 +0100, kevin wrote:
> > I am trying to set up an openvpn connection between our main server and
> > the off-site backup server. Something nice and simple with a static key.
> > I seem to get a connection but have a routing problem. 
> > 
> > The config file is
> > 
> > port 1194
> > dev tun
> > ifconfig 10.8.0.1 10.8.0.2
> > secret /etc/openvpn/static.key
> > keepalive 10 60
> > persist-tun
> > persist-key
> > comp-lzo
> > tun-mtu 1500
> > script-security 2
> > route-up "route delete -net 192.168.200.0"
> > route-up "route add -net 192.168.200.0 netmask 255.255.255.0 dev tun0"
> > verb 5
> > status openvpn-status.log
> > 
> > The routing table comes up with:
> > 
> > Kernel IP routing table - with VPN up
> > Destination     Gateway         Genmask         Flags Metric Ref    Use
> > Iface
> > 10.8.0.2        0.0.0.0         255.255.255.255 UH    0      0        0
> > tun0
> > 192.168.100.0   0.0.0.0         255.255.255.0   U     0      0        0
> > eth0
> > 192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0
> > eth1
> > 0.0.0.0         192.168.1.254   0.0.0.0         UG    0      0        0
> > eth1
> > 
> > What happened to the route 192.168.200.0
> > 
> 
> Shouldn't it be push rather than route up? sth like :
> push "route 10.0.0.0 255.255.255.0"
> 

The client network is 192.168.200.0/24
The server network is 192.168.100.0/24
So I think - could be wrong - that I need a section in my routing table
on the server that says how to get to the client network and vice versa.
At the moment I am trying to set up the route on the server so I think
its route and not push. Push would send it to the client. Anyway - its
not happening!